MAL-2025-175318 Malicious code in kapvino-sofgdi-gagfua (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47788f0cd96ee4b8b914011f2b3787b2172d1f3d1f6c2fe6767cd02af86b06be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cindy-empal78-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9af9167f91bb57f553515755d2d3728ab64698e2c2bc99243460573b6f3db0fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-133213 Malicious code in erwin-lumpur45-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab6bf553b72eeba38dad16f2d65f4aae034ad6879e2f3f21f19ade9e27fdb2b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-88993 Malicious code in ocha-kue43-kyuki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17f0f7a80af7e40aa21159657c94433175c0bc45c9aef57bf328579e12432070 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...